WebExtensions can use request redirection and a "filterReponseData" filter to bypass host permission settings to redirect network traffic and access content from a host for which they do not have explicit user permission. This vulnerability affects Firefox < 60.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2018-06-11T21:00:00
Updated: 2024-08-05T05:26:46.980Z
Reserved: 2018-01-03T00:00:00
Link: CVE-2018-5166
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-06-11T21:29:15.640
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-5166
Redhat